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1 TITLE 

2 COPY PROTECTION SYSTEM 

3 FOR PORTABLE STORAGE MEDIA 

4 CLAIM FOR PRIORITY 

5 This application makes reference to, incorporates the same herein, and claims all rights 

6 accruing thereto under 35 U.S. C. § 1 19 through our patent applications entitled The Digital Content 
Encryption Apparatus And Method Thereof earlier filed on the 24^ day of September 1998 in the 

11 Korean Industrial Property Office and there duly assigned Serial Nos. 1998/39808 and 1998/39809. 

W FIELD OF THE INVENTION 

id;^ The present invention is generally related to encryption processes and apparatus, and, more 

particularly, to secure and robust processes and apparatus for the generation and use of keys in the 
nk transmission and replay of digital information for licensed SDMI compliant modules such as 

13 personal computers and SDMI compliant portable devices in conjunction with Internet service 

14 content provider and certificate authority. 

15 BACKGROUND ART 

16 Recently, with the flood of information provided by various media such as broadcasting and 

17 press, an atmosphere has been created by the information providers who are interested in providing 
IS integrated information that covers all of the media. Other users want to selectively receive a specific 
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item of digital information from the entire spectrum of information available from a particular 
information provider (IP). Accordingly, a digital content transmission system has been formed by 
the information providers who convert various types of information into digital form and store this 
digital information, and the users who subscribe to this digital information system from the 
information provider via the network. Digital information transmission systems endow an 
apphcation program with easy downloadability of the digital content. The user can get all the 
information desired by using this apphcation program to access the digital information system 
through the network. 

The digital information may be provided to the user either for pay or for free. In case of paid 
digital raformation, the server who provide the digital information via the transmission system sets 
the service fee. The service server charges the user according to the quantity of information used 
when the digital information is downloaded to the user. MPEG software protocol for example, 
compresses audio files to a fraction of their original size, but has Httle perceptible affect upon the 
quaUty of the audio sound. MPEG software protocol is now widely used by Internet sites offering 
digitahzed music, and is reported to be commonly used to offer digitalized versions of recorded 
music without the consent of the musicians. When a user is connected to a server that provides 
digital information commercially via a network, a few of the users may be able to inadvertently or 
illegally copy the digital information, a practice that, as was recently noted by Interdeposit and the 
French Agency for the Protection of Programs, a member of the European Association of Authors 
and Information Technology Professional, in the Patent, Trademark & Copyright Journal, volume 
57, No. 1416, page 385 (1 1 March 1999), would be economically damaging to both the musicians 
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and to the server who is miming the digital information transmission system. Cnrrently, the server, 
as well as the musicians, can do Uttle more than seek redress by undertaking civil and criminal action 
in an effort to control the possibility of unlicensed reception of digital information. We have noticed 
that there is a need for a technique to preserve transmission security of revenue bearing information 
while restricting access to the information by unauthorized entities and preventing unauthorized 
users from using any of the information that they may be able to illicitly obtain from the information 
provider by restricting the ability of the unauthorized users to decrypting whatever information they 
manage to obtain via the system. 

SUMMARY OF THE INVENTION 

It is therefore, one object of the present invention to provide improvements in cryptographic 
processes and apparatus. 

It is another object to provide a secure and robust digital encryption process and apparatus. 

It is yet another object to provide digital encryption processes and apparatus endowing a 
system with secure and robust copy protection for LCM's (Le., licensed SDMI (i.e., secure digital 
music initiative) compliant modules such as personal computers) and PD's (/.e., SDMI comphant 
portable devices such as disk and DVD players) in conjunction with ISP (/.e., Internet service 
provider) and CA (Le,, certificate authority). 

It is stiU another object to provide digital encryption processes and apparatus able to encrypt 
and transmit digital information received from a transmission system, by the use of multiple 
cryptographic keys. 
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1 It is still yet another object to provide digital encryption processes and apparatus for 

2 generating and using multiple cryptographic keys during the transmission of digital information to 

3 a user. 

4 It is a further object to provide digital encryption processes and apparatus that employ user 

5 information in the generation and use of mxiltiple cryptographic keys during the transmission of 

6 digital information to the user. 

7 It is a yet farther object to provide digital encryption processes and apparatus able to encrypt 

8 and transmit digital information obtained from a transmission system by using multiple 
9;fl cryptographic keys, and to decrypt and play the digital information at the terminal of the user by 
10^ using a plurahty of keys, one of which is common to the multiple keys. 

1 1 j It is a still further object to provide digital encryption processes and apparatus able to enciypt 

12- and transmit digital information obtained from a transmission system by using key information, a 

13 ;P user's key, and a temporary validation key, and to decrypt and play the digital information at the 

14 terminal of the user by using the key information and user authorization information. 

15 '''' It is still yet a further object to provide encryption, transmission and reception protocols 

16 enabhng encryption, transmission and decryption of digital information received from a transmission 

17 system. 

18 It is an additional object to provide encryption, transmission and reception protocols enabling 

19 encryption and transmission of digital information received from a transmission system by using 

20 multiple keys to encrypt the digital information, and decryption and replay of the digital information 

21 at the terminal of the user by using a plurality of keys, one of which is common to the multiple keys. 

-4- 
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It is a still yet fmtlier object to provide encryption, transmission and reception protocols 
enabling encryption and transmission of digital information received from a transmission system, 
by using key information, a user's key, and a temporary validation key, and decryption and replay 
of the digital information at the terminal of the user by using the key information and user 
authorization information. 

It is also an object to provide a more secure cryptograph and process for transmitting 
information to a terminal of a user who has requested the information. 

It is also a fiirther object to provide a cryptograph and process that rehably restricts the ability 
of a registered subscriber who has validly obtained information from an infoimation provider, to 
deliver that information to another entity in a readily usable form. 

These and other objects may be attained with an encryption process and apparatus that 
provides a secure and robust copy protection system for a Ucensed secure digital music initiative 
compUant modules such as pereonal computers and portable devices, in conjunction with Internet 
service providers and certificate authorities, by responding to a user's request for transmission of 
items of digital information to the user's terminal unit, by providing copy protection during 
downloading and during uploading of the digital contents. In order to prevent the digital contents 
from being copied illegaUy, a plurality of keys are generated and held by both the user and the digital 
content provider, and a secret channel is formed between both the user and the digital content 
provider. The header of the encrypted digital content is encrypted by using a physical address of a 
sector of a hcensed SDMI compUant module such as a portable computer or a portable media device 
in order to prevent the digital content from being copied iUegally after the digital content is recorded 
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in the portable media. 



BRIEF DESCRIPTION OF THE DRAWINGS 

A more complete appreciation of this invention, and many of the attendant advantages 
thereof, will be readily apparent as the same becomes better understood by reference to the following 
detailed description when considered in conjunction with the accompanying drawings in which like 
reference symbols indicate the same or similar components, wherein: 

Fig. 1 is a block diagram illustrating the overall architecture of an implementation of the 
principles of the present invention; 

Fig. 2 is a block diagram iUustrating a registration by an original equipment manufacture of 
a portable device with a certificate authority; 

Fig. 3 is ablock diagram showing the registration of a Internet service provider's registration 
with a certificate authority; 

Fig. 4 is a block diagram showing the registration of a personal computer and a portable 
device with an Internet service provider; 

Fig. 5 is a block diagram showing usage rules governing a database of a right management 

system; 

Fig. 6 is an exempKfied format; 

Fig. 7 is a block diagram showing the basic architecture for various inputs; 

Fig. 8 is a block diagram showing control of outsource import; and 

Fig. 9 is a block diagram showing a copy protection system for portable media. 
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1. INITRODUCTION 

In this manuscript ws describe, as S^ms^iig^s proposal for the SDMI staDdardi^tion, the specific roles and 
proc6$smg rules of the LCM (Licensed SDMI Compliaai J^odule, e.g. personal PC) and SDMJ Compliant 
Portable Device (PD). 

First, in section 2, we depict our total architecture for a secore Electronic Music t)i$trj,bution (BUD) as a 
candidate for the SDMJ CampUant EMD. In section 3. for thfe removal of the ambiguities on spme 
termmoJogjes and for the elear explait^ttion of our proposal, some terminologies are defined, For $o.me basit 
requirements or basic raodules to be pres^it within LCM or PD for their secure installation and sectffe 
content transaction are presented in section 4 and the initiali^atiou protocol of LCM $nd PD Is described in 
secuoti 5. From section 6 to section 8, tixe secure content transaction protocol over ISP-LCM-PD-PM i^re 
described vta the appropn'ate file format appeared in section 7 and using some functional roles facilitated 
by those m section 6, Furthermore, our proposed SDMI compliant processes for the cooaidemble various 
outsource inputs to LCM or PD is presented in section 9, 

2, OUR OVERALL ARCHITECTURE 

Jn our overall architecture depicted in ihe following, the iSP (Internet ServiceCContent) Provider) and PD- 
Manufacturer should register to CA(Certificate Authority, e.g, SDMI) to achieve their right certificate for 
SDMI Compliant Role or Product When an ISP registers to CA^ Ca issues a certificate to the ISP'$ PubUc 
K-ey and stor&s it into its Data Base and hereafter help$ a LCM to makes use of this daia to authenticate the 
ISP when it needs to register to the ISP. And when a PD-Manufacturer registers to CA, CA also issues a 
manufacturer key and its c^rrificate for the nianofactLirer and stores it into its Data Base and hereafter, by 
use of this, stipulates a secure ?D-Registration to a LCM by checking its certificate validation in liie LCM 
and by constructing a secure channel between them. Note that my ISPs do not have any knowiedgv about 
the manufacturers' kfiy$. 

While some content transfer between LCM and PD occuns, the right nsanageroent syat^sjn may act on the 
header pj^ of its file format, where, of course, each communicatian or content transaction among the 
members appeared m tiie Fig.2-1 should be done only after their authenticating and constructing a secure 
channel. As for the right management of contents, our proposal contain$ Copyright Status, Playback Status, 
and Transfer Statt^, In our proposal, die transfer ability of a content is discrintinated firom the portabiliry of 
it. The Kiosk-Jike machine is to he treated as a LCM, but is to be subjfUCt to the groups of copyright holders. 
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Figure 5-1 : The Overall Architecture 

3. SOME TER]VI52^0L0GIES 

For The rfimoval of some ambiguities, in this section, wfe define some terixiinologies and M up some 
abbreviated words for a simple de$<;ription (most of them are thos0 poniinoniy t^ed in PDWG). 
First, we have to distinguish the two words, "Portability'" and "Transfembilifcy" of a content, 

• Portability - a content in a PM cm be played b any PD 

• Transferability - Portability + 'Upload Of a content is allowed from a PM to even a LCM", in this 
P3se the cot5tent\s uploadability is to be cotttrdlled by checU^i/out syytem and its transferability 
Hiatus. ^ ^ 

Hereafter we use the following abbreviated words. 

• C A - Certificate Authority (e.g. SDM, or other trust third party) 

• LCM - Liceitsed SDMI Compliant Module 

• PD - SDMI Compliant Portable Device 

• P0FM - Portable Devices Functional Module 
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• ISP - I'iltemet Service Provider {incluiciing Content J*rovidef via the Lnternet) 

• ?M - Portable Media (SDMI Compliaat Storage MedLa) 

FurthemYore, here are pre$mt&d some nomtions to he used in the fpUowing sections. Evfen though they are 
some intricate, we aa-e sure that they would help the readers clearly unders:tand thii concrete method wfi 
intend, They are relevant to the algorithmii;: functioi^al modules. 

• ECC - El iiptic Curve Cryptosy stem 

• PrvKeyA , PubKey^ - Private Key and Public Key of A (thj$ may be LCM, PD (optional), ISP, CA, 
,..) , respectively, 

» CertcA(PabKey J - A Certificate for a iPublic Key PubKey^ issued by CA. 

• MKi^o - The Manyfactorer Key within a PD 

• The Indicator of a Manufacturer Key 

• CKyjvLCM " This i$ a secure (secret*?) channel k^y which is setup b$tweeji PD and LCM 

• ECJENCik^ , C) - Elliptic Curve Encryption of 4 content C by utilizing a public kev. key. Where 
the ancryptian is rhe EiGamal4ike public key encryption process. And Samsmg can svj?port Us own 
ECC impkrneniaSion technique that in very effective for both S/W and H/W Impiemmtmion. 

• ^CJ>EC(key , C) - Elliptic Curve based Decryption of a ciphextext (encrypted tex.t) C by gtilizing 
a private key , key, 

• EC_DH(/4* if) - A random secret value (key) shared between A and B by Elliptic Curve based 
Diffie-HeilTnaQ Ktsy Exchanging Proxocol 

• ^NC{key i C) - Symcnfitric Key Encryption of a content C by utilizing a seciete kev. key. Samsung 
can support its own Symmetric Key Entryptlon algorithm, named '*SNAK£'\ ihat is very effecti\fe 
for both S/W and WW imphmmtaiion and it has been world-wid^ cryptanaVmd. 

• l3i%C{key , C) - Symmetric Key Decryption of a ciphmext C by uti (ixing a gecf fete kgy, hsy^ 

Note: In the above items the Elliptic Curve based Public Key Cryptosy$t$m is just m example as a 
candidate of Public Key Cryptosystem, and so any public key cryptosystem, for example RSA, can be used 
instead of it But we suggest that SDMI Compiiiint HMD System (Electronic Music Distrlbuti-ng System) 
adopt the ECC System for thfc next generation PDs, since ECC can be efficiently implemented in such 
.small devices with low cost 

4. BASIC ftEQXJlTlEM£NTS TOR THE SECURE SETUP OF LCM AfsTD VJ> 

Here we prtjsent the minimum substances (algorithms) that Jire needed for the insurance of the security of 
LCM and PD, It is ^sumed that the content compressing and decompTsssing CODECS are built in tmh 
device in either S/W-form or .HW-form. 

4.1. For the LCM 

» Piiblic Key Cry ptosystem (PXC) - ECC, RSA, . . . (ECC is more preferable) 

-> This is to be used for the secure key setup of LCM, the validity check of ISP^s Public Key 
Certificate, and the $ecure chaniiel consmiction between ISP and LCM, 

• Symm^^tnc Key Encryption Algorithm SNAKE, 

This is to be used for the content encryption, th^; authentication to a PD, and the secure channel 
construction between LCM and PD 

• Secure ChecJi-in/Check-oui: System - It is to be presented in section 6, 7 how to conistruct this 
system and how to securely maintain it 

4.2. For the PD 

• Public Kfcy Cryptosystem (PKC) - Optionat to PD. 

• Symmetric K^y Encryption Algorithm - SNAKE, ... 

This is to be used for the content encryption, thfi authentication To a LCM, and the secure channel 
construction between PD and LCM. 

• manufacturer Key, MKpo - the pre-set manufecturer key in a temper r^si^tant area within the ?D. 
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-10- 



PATENT 
P55690 



This is to be used for the secure registration of a PD to LCM. 



4.3. FortheKVI 



Tber0 needs an apparatus or ? pre-set special mformatian within a PM to protect contents in it from the 
deiad-copy to another PM, ft is desirable, we think, to us^ the iwitjue ID based approach, that is the ra^thod 
th^t the manufacturers of PM im'b^d a irpjqg^ Tt* of each P^f in the write-protected area of it while they 
manufacture it. This cm be considered as a low cost method to dead-copy protection for the 1*" giitrieration 
PM, 



S. INlTTALIZATION (KEY SJITUP) MECHANISM 



There arc 4 registration mechanisjns relative to ISPs, LCMs, and PDs. The maau&cturers' regiscration to 
CA is preceded ahead all the others, 



5, h iR^gistration of PB manufacturers to CA 



Prior to mnuftcturing PD, the manufacturers should regisier to CA to get thjeir manufacturer key, MK^p, 
and its certificate, CertcA(roMK) » ^^^^ produce ihe SDMI Compliajit Portable Device* by usiag them. 
Where such registered manu'f!acturer k^ys are securely stored in CA's DB and only CA maintains the 
information. The manutoui'er should keep their mauiufecturer-key and its ceitificate in saf^^, maintain ii 
securely, md imbed them in a temper resistant area of PDs while he manufacfures PDs. Jn the Fig.5.1-) an 
illustrated example is dapicted. 




Figure S.1-1: PD-Manufacturer's Ileglstration to CA 

In this figure, when a manufacturer request its regisfratlon to CA, CA certifies it and then geo^rijtes a 
manufacturer key, MKp^ , and make it$ certificate data, Cert^^^dDtyaJ. to dfeliver them to th& manufacturer. 
At the same time CA generates random token, T, to make (or update) the Msuiufecturer Key Information 
Table (MKIT) for the other ISP-registration. Once after a manufecturer got the data, {MK.po , 
Cert(;:A0OMfc)}, he/she can manufactures PDs by imbedding tbosa secrete data within a temper resistant area 
of PDs. 



5.2. ilegistration of iSP to C A 

The following Fig.5-2-1 shows how for an iSP to register to CA and what information to get fi-ojn C A, For 
an ISP to register to CA, firstly it generates its ephemeral private-public key pair {PrvKey,j,h i PubKey.^j,} 
to open a secure channoi between CA and itself by EC__DH{CA, ISP). Secondly the ISP gets its semi- 
permanent private-public key pair {PrvKeyisp , PubKey^sr , Cer tcA{PabKey,sp)} and MKIT data appeared 
in Fig,5.M through the secure channel. Where CA's certitication to the ISP should be preceded s^head all 
these procedures. 

Note : ISF \s Key Pair should be securely stored. 



''CQj^d milSh Samsimg Electronics Co., Ltd, 
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EC^DHCCA, ISP) = K 




Figure 5.2-1 : ISP Registration to CA 

Noii: ; The LCAf's Key Pair should be securely stored, where ihe Hqsj 's various system parameters may he 
usedfpr this gaai, 

5.3, RcgistrBtlons of LCM to ISF and of PP to LCM 

Here the LCM registration mechanis,tti to an ISP ^ogethe^ with PD registration .is described. As in the 
Fig,5.3-] LCM gets the [SP*s Public Key Inlbrmation {PubKey,^,. , CertcA(PubKeyjsp)} at first and verifies 
its validity by using die CA's Public Key Information which was already aiiiiounced or preset witliin the 
LCM in a code-imbedded- like mechod. 




Figure 5.3-1 : LCM and/or Registration 
to liSP 
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If the validity of the certificate for the FSP's Public Key is certified, ths LCM execa£e$ the handshaking 
proiocpi to get a ephemeral shared key by utilizing Elliptic Curve based (or oth^ir FKC based) Key 
Exchanging Protocol, Through this secure chattnej the ISP can deliver in safe the LCM*s permanent 
priv^te'^pubhc key pair for a static secure communication and a secure content transaction betweeTi the 
LCM and the TSP. For a PD to register to the LCM, it has to toss the certificate data for its ID of 
manufacturer key and the LCM gets this data from the PD to send liiis to its connecred ISP in th^ encrvoted 
form, EC_£NC(PubK€y,sp , CertcA(n>MK)). 

Using this, the iSP can verifies thts manufacturer key information and can extract its relisvant data T*|jT by 
looking up MKIP in rsP^s DB to traarfer it to the LCM in secure manner, i.e, by ElNCfPubKeyi^^, , 
T*j]T), For the LCM and the PD to ssstap a shared secrete key and to complete th&l^D registration, die 
LCM randomly generates their static and secret channel key CKpo.LCM and sends EJNC( T, CK^j^^^^ )[| T* , 
Upon receiving this data, the PD can extract the token value T from and using this token the PD can 
al6io compute CKj^i^cm* As the PD securely stores this channel key the PD-registration is finished, 

NoiBi I The Channel Key CKpj>.i^cM may bo originated from PD instead of LCM. In this case the PD 
receives the data T* from the LCM and gets the token T by decrypting T* with it$ raanu&cturer key. And 
then the PD generates a random channel key CK^^.^cu to upload ENC(T, CKp^^um) ^ LCM. 

I>/aie2 : The part of the record in MKIT (in LCM) stays in encrypt*2d fonn by u$ing the LCM*s secrete key 
(this key may be LCM's Public Key). 

Notfs3 : In practice, during the PD registrauon to LCM, the RMS-DB updating token data (UTD, appeared 
in section 6,1) should be transferred from the PD to LCM(or from the LCM to PD) togeiber with CK^olcm 
and be set both in the RMS-DB aad in the PD. 

5.4. Registration of Multiplt^ LCMs or Multiple PDs 

Our architecture and the file format can allow users to register their own h'mited number of LCMs or PDs. 
The number may be ii,mi.ted fay ISP or by CA. 

" Rggistratjgn of Multiple LCMa since ISP maintains the private-public key pair of the firstly 

registered LCM of an user's multiple LCMs, TSP can securely deliver the same key pair to the 

another LCM of the user's, 

RggiSffation of Multiple PDs since LCM securely maintains the secret channel key btstween the 
LCM and PD, tlie LCM can securely deliver the same key pair to the another PD of Ae user's in the 
same raannecT depicted in Fig, 5.3-1 , 



6, COMPOEVENTS WITHIN LCM AND PB 

6.L Functional Components in LCM 

» Right Management System 

^ To manage the information CTC-^ {Copyright, Transfer, Check-in/Check-out), LCM has to 
maintain the lUght Management System DB, named RMS-DB in a secure manner. Here we propose 
our secure Right Management System. In this system we focus on the content transaction between 
LCM and PD. 

The RMS-DB consists of the Title (or Tiile-ID), CTC field. Playback Control Status (PCS : the 
permitted rimes to play, the amnesty period, ...) and Update Token Data (UTD). This DB stays in 
LCM in the encrypted form by utilizing LCM's secrete key. An important characteristic of the 
Update Token Data (UTD) is that it is generated from PD whenever any content downloading or 
uploading session between PD and LCM occurs and that it is also stored in the PD, 
Whenever a content is played back at first in LCM, the above right management information of the 
content's file format is newly registered to the RMS-DB. Once a content is registered to the RMS- 
DB, every playback procedure should prlofy reference to the DB to check the content*® validation. 
The following Fig,6.i-1 shows exemplified implementation for the management rule of RMS-DB 
when a content downloading occurs. 
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Noiel : The part of the record in RMS-DB (in LCM) stny$ iii esncTypxed fbrtn by n&mg the LCM's 
secrete key (this k^y may be CKpd,lcm)- 

Notel : The UTD part my have a few number of Updating Token Data depending on the Jiunxber 
of a user's own PDs. 




Figure 6.1-J : Usage Kule of RMS-DB 

Note [ The RMS-DB mcry mainlain a finite number pfVTDst d&pmding on iha limited number of 
user^ * own PDs which were already registered to the LCM, 

m FD Import Control 

This layer existis in LCM to import SDMI Compliant contents from ISPs or to imporl non-SDMI 
Compliant outsource contents (,e.g. RedBook CDS. DVD, And so this should contain such 
eapabUities as the foilowings. 

• Trans-Coding to make PD decoinpress the input with its CODEC 
Trans-Encrypting to make PD decrypt the input with its Enciyptiort System 
Conyerting the input to SDMI Compliant file tbnnat 

• PD Interface 

This has the following capabilities, 
Authenticating to PD 

Opening a secure channel between LCM and PD 

9 ISP Interface 

This has the following capabilities. 
Authenticating to PD 

• Open big a secure chatanel between LCM and FD 

6.2. Fuittitional Components in PDFM 

• LCM Interface 

This has the following capabilities. 
Authenticating to LCM 

• Opening a secure channel between PD and LCM 

• Import Control within PDFM 
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This has the capability to import a ouisouree analog input and to make it fit to the SDMI Compliant 
fiJe forjT!3t. Where the converted SDMI Compliant content should have; the binding information to 
th6 PD 10 be played only vii^ the PD. 

7. SDMI COMPLIANT FILE FORMAT 

The SDMI-Comph'ant fih format $houid contain the following iiifofmation and should allow cxtendibtlity 
and flexibiJity. 

• Indication of Source Originator ISP, LCM (CD-ripping, Audio input), PD (Analog input), 
Kiosk, ... 

Device IDentifier LCM_ID, PD_ID, PM^ID 
Algorithm Information Field 

^ Authentcation secret sharing algorithm identifier -> BC(EJliptic Curve)-Signaturfe, EC-DH, 

^ Encryption algorithm identifier SNAKE, 
^ Codec algorithm identifier MP3, AAC, 
^ Encryption key information of content 

• Right Management Field 

Right management field contains the Copy, Check-Jn/Out, Transfer and Playback Control Stanjs, 

which are to be encrypted by secret key of the device. 

^ Copy-Never/Copy-Free/No-More-Copy mode 

^ CbecV-In/Out mode 

^ Transfer mode (Transferable or not) 

^ Playback Control information 

Allowable number of times to be played (imilmited or n-times) 

Expiration date 

Amnesty period 

• Copyright holder intormation 

Content description fieid TitJe, Composer, Artist, Record-label, ... 



Here is illustrated an exemplified file format 



H6C_ENC(PubKeyLCM , this block) 



Title-TD CDF 



AIF I Device-TD 



SOI 



CHJ 



RMF 



CEK -k 



ENC(k, Content) 




\ Algorithm J4e^tlfyte0 md ; BCC, gNAKBi"€C)PRC» , 

— ■ — — -jr- 



n 



We divide the above file format into the following three parts and we call them as in the following. 
Plain-Header (PH) ^ {Title-ID, CDF, ATP) 

* Secret Header (SH) - {Device-ID, SOI, CHI, RMF, Content Encryption Key} 

• File Body (FB) - {The Encrypted Content by using the content encryption key In SH) 
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S, SECURE CONTENTS TBANSACTIOX RULE OVER ISF-LCM-PD-PM 
«.1 , Contents Transaction from ISP to LCM 

Wfieia an ISP receives a contfint downioaditig request from s LCM, it confmns the LCM's ID m\d then 
downloads the content with the file format of section 7 to the LCM. For the LCM to play the reached 
content, it follows the below steps in this order; 

Finding out the encryption ajgorichtn torn the field AJF in FH 

U$mg the found out encryption aigorithin and LCM's secrete key (private key) to recover the fields 
inSH 

Comparing the Device-JD field with its ID 

From the RMF information coDfirming the Copy Control Status^ Playback Control Status, and 
Transfer Codtrol Status to register it to its RMS-DB 

Recovenng the content encryption key from CEK Xd recover the rpal content from FB 
If any of the above lists doe$ not violate, paying the music. 

Jf it is needed to modify the RMF field, especially the playback Control Status (PCS), LCM has to replace 
the data both in the file and in the RMS-DB following the controUIng direction. 

8.2. Consents Transaction from LCM tn PD 

The procedure for a LCM to download a content to its PD follows ihe below steps: 

- LCM requests the PP-ID and UTD data to tb^ ?D. 

. PD sends the EN C{CK^^^u ,UTD 1| FD-ID) to the LCM. 
LCM. recovers the PD-TD and confirms it 

- LCM recovers the UTD and SH pan compares them with those in its RMS-DB. 

If UTD IS correct and if any alieration of RMF 1$ tieeded, the LCM updates the contents of RlVff 
both in RMS-DB and in the format. 

- LCM updates UTD of RMS-DB by newly generated UTD* and ESC(CK^^_^cm ,UTD*) is to be sent 
to £h$ PD. 

If the Transfer Control Status indicates as "Tran$fV, then risplace it by "Trginsferred" to the 
Transfer ConCfoi Status field m RMS-DB not in the file format. Where the Transfer Control Status 
field has the three type$, "Transfer", Transferred'', and "Transfer-non". 

- If the Copy Control Stanas (CCS) indicates "Check-in", then replace it by "Check-onf' to the Copy 
Control Status field both in RMS-DB and in the fdo format 

If the Copy Control Stanis (CCS) indicates "Copy-Never'^ th$ content downloading to a PD is 
denied. 

If any of the above lists does not violate, download the content to the PD, 

5.3. Contents Tr^ntiuctioii from PP to PM 

* For the case that a unique ID of each PM exists : 

For a PD to write a content on a PM, it just writes the content on the PM and ii recovers the Secret 
Header (SH) and re-encrypts it by using the nnique ID of the PM as an encryption key. 

Far the case that a unique iP nf each PM' do6s not exist r 

For a PD to write a content on a PM, it just writes the content on The PM and it recovers the Secret 
Header (SH) and re-encrypts it by nsing a randomly generated key. Where the randomly generated key, 
say T, is encrypted by a common secrete key, S (this is a preset value by the manufecturer of the PD), 
and is aI$o written on a hidden area of the PM. 

Portability of PM 
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For the .first case of the section 8.3, alJ contents within the PM cm be played by all PDs, but, for the secpnd 
cm, all contents within the PM can be played ojuly by the PDs produced by the fflanufecturers which 
adopted this system. Any w^y it is certain thai thi$ system can supports the portability of contents via PMs. 

* .5, Transferability of ft Cdnteni 

As previously we defined in section 3, the "Transferability" is a different concept from the "Portability" of 
a content. The main difference is that the con.tBnt with "Tranisferabilifcy"' can be not only played in any PDs 
but also yploaded to any LCMa, but not in the case of "Portability", Since our system has and raaaages the 
Transfer Control Status field both in the RMS-'DB and in Uie file format, our sy$tem can support tlie 
transferability of a content If there is marked "Transfer" in the field of a content and if the content is just 
downloaded to PD, then the LCM downloads it to the PD and replaces '"Transfer'* by "Transfeired" in the 
relevant field of RMS-DB. Then the content, which has been downloaded to a PD, can no longer be played 
in the LCM until it is uploaded to the LCM again, but the downloaded content in a PM can be played by 
any PDs and can be uploaded to another LCM via a PD, 

No(e : If the Copy Control Status (CCS) of a conient coniained in a PM indicQm "Copy-Ftea", the 
content cm he uploaded to any LCMs, 

9. OUTSOORCE INPUT 

A3 shown in the Fig.9-1, variou$ inputs such as originated from RedBoak CP, Audio CD, Super Audio CD, 
DVD Disk, and analog Device are all allowable to LCM optionally. An analog input to PD is also 
allowable. The secure import control for those several inputs to LCM or to PD is presented in the next 
subsections- 




Figure 9-1 : Outsource Input to LCM and FD 



9.1. Basic Architectu re for a Secu re Import Control 

As shown in the Fig.9. 1-L the host device, in which the LCM module exi5ts, has at least the following 
three layers (t\vo of these exist in the LCM module). 
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Figure i Outsource Import Control 



# Autbcnticnted Input API 

This API has the roles that confirms the validity of ths input and extracts some required informatioTi 
i:d convert the input into a SDMI CompJiaJit format 

Validity Check 

If the input dsxU has a watermark, then this API should be abk to detect it. 

If the input data tak6$ an encrypted (qr scrambled) form, then this API should be able to 

extract its encryption key arid tiie encryption (or scrambling) algorlthni. 

If the input data do?3 not take my protected form, then the A?I should confirm the 

validity of written format cjf the media containing the input data. 

Required data for the API pass over to the Impon Control Layer, 

Inforniatjon of the media (source) type -> Audio CD, DVD Audio, ... 
Information of the originator of the input content 
Information of the content Title, if aay, 'Player, Artist, . . . 
iTitbrmation of the encryption algorith m if any 
Information of the encryption key if any 



• PD Import Control 



Thi$ Import Control Layer gets a bundle of information from the Autlienticated input API and 
reconstructs the input content to meet a SDMI Compliant file format by following the rules listed 
below; 
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Copy Coniroi Status mark "Copy-Never** or "Check-m/Chtsck-oiit" (optionally) 
Playback ContrpI Status m^rk "Times to playback ^ infinite or N'* (N: optional) 
Transfer Control Status mark "Traasfer-Nota" 

• Mark the "LCM-ID" into the SOI fia'Icf and Device-rO field of SH(Secret Header) 

If the input content is not eitcryptfed^^ then generatt? a random key and encrypt it by the kfiy. 

* tf the input content Uikes an encrypted forjn by oth^r encryptioD ajgorithm different from the 
PD's, then this layer trans-encrypts the content to be played in the PD, 
Public-Key-Encrypt such made secret header part by LCM's public key. 

• Pl> Jnferfae^ 

This layer authenticates the connected PD by checking whether the PD has its correct ID and the 
secret channel k^y, CKppj.cM . Whfere the Kerberos Authentication Protocol may be used (refer to : 
A J, Menezes, P,C- Oorschot, and S.A. Vanstone, Handbook of Applied Cryptography, pp.401-403, 
CKC Press, 1996). 

9.2, Analog Input to PD 

Th0 Import ControJ Layer (ICL) within the PDFM makes a SPlVQ Compliant compressed digital content 
from the analog input by following the rules listed below: 

Upon reception of each frame of the analog input, the ICL does encoding the fraitie and do^a 
encrypting it by a randomly generated key. If all the frames has been encrypted follow the next stfcpa. 
Copy Control Status ^ mark ^'Cdpy-Nevef ' or "Checic-jn/Check-out" (optionally) 
Playback Control Status -> mark "Timtis to playback ^- infinite or N" {N: optional) 
Transfer Control Status ^ mark "Transfer-'Non" 

Mark the *^PD-TD'* into thfe SOI field and Device-lD field of SH(Se<jr?t Header) 
• Encrypt such made secret header part by PD\s channel key. 

Note : If such converted SDMI Compliant content from the analog input has its SOI field ofSHfSecrei 
Necider/wtth marked ''PO-ID '\ then the procedure of writing the content on a PM does not usa (he unique 
iD of the PM. ^ This means thai such content as mode from an analog input to a PD is not allowed to 
have the '\PortabHUy'\ 

9.3- Kiosk 

An example for the ''Kiosk'* may be a shop or a machine that noakes a bundle of SDMI Compliant conttrnts 
into PMs from CD-Ripping> etc, and sells them. Here we regard such Kiosk-Hke machine as a spocial LCM 
with PM-Interface that hm a special contraction with some ISPs and groups of copyright holders. Hedce, to 
make a SDMI Compliant PMs from other physical media, the Kiosk^like machine follows the same 
routines as described in section 9.1 and 8.3. 

10. CONCLUSION 

in this article we proposed a secure copy protection mechanism for the Int<?rnet based MOD Services. One 
of our proprietary modules is relevant to the use of and managem.ent of MKIT table ^x^^^^td in the PD 
regi,stration procedure. Another one is relevant to the construction gf secure Check- in/Check-out System 
which $ecwe]y maintains the contents downloading /uploading between LCM and PD. 
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z?.4Ji 44, CEK ^H..3- ^1-g-4<=^ 4^11 ^J-5i4 41- 4444:^i, 
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PC(40)7]- ^fl-g- ^Hl. ^nn^] -^^==r 

^(30)€- PC(40)^ -t^l^-^H. Al^T=f. 

^>^, RMFl^ ^ m> ^1^1 ^-2.^ ^-f^l-^. PC(40) 

S (50)7f 7Wal UTD ^S.* ^^tl-^. 

;L, O.^^ ^cfl-t- ^t7l{50)^ PC(40)sl 4^ 71(CKpd-lcm)S UTDC- "^XSl-tl' ^ 

I :^tfl4 ^$7] IDS:^ PC(40)S ^^tt^. '^'H. PC(40)^ ^^4]^ ^it7](50)5. 

;i ^^tt ^ -i^^-s- ^^7] ID» -^-^l'*'! T^^l^T^ 

vyoj^^ .^^^y ^Qyy ^mM, m^] '4^r PC(40)^ c5]o1e^ 

PC(40)fe -^l^^^ UTDS. Ell6]B] ti^jol^i-i- ?3^Al-7]Ji, A]]f.7l} Aj^j-^ 

pVo_j=^ ;^]o^ ^eH^ 'Transfer' ^A^^^ ^l^lt ^€^7]- ^cfl-i- 

7l(50)3L \+ ^ 'Transferred'^. t|^^]€4. PC(40)7> eilo]^] 
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m ^^rm 

^ ^^^^^ 'Transfer', 'Transferred'. 'Transfer-non' 4 ^^'^^^ ^ 

1S7> ^ PC(40)7} 7^31 ^11^1^^ 4€ 

p^V6^ ^A} 40] -^A} l-7l-{Copy-never)'S. 

I ^(60)S m^-Z- ^B^^fe 'i'l^^ ^c]-. 

I jsitfl^ ;^^^l]^^l(60)i i-^ ID71- -m^}^ ^^-^ ^^^^ 

ibow ^nm(sQ) ^^^^ ^m^-?] ^n. m m^mm 

"^±2^ '7lS-Ai ;^i.^j-^PK50) ^-^l ID* 

i^^Bl- 7]4^>J1, 7]^% flMHl- A]ae^B ^t^CSecret Header)^ 
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o^7iA^, ^^m^ Tfe °a«J:^^J ^1^5^^ ^l^J ^'511 

S ^]C60) vfl.^] si^ H.^ ^4 =1 ^^^i ^B^4 ^15^4'^ 4^ '^'^^ 

1^ ^tfl^ c^^7l=^] 2:i«ll^i?1: Tli^A]^ ^ °X'^. 

E ^ 44^ M-l- ^t4 ^'ir 4^4 ^ 

a SI 2^ pc^ ^^s-A]^ ^ ^4. 

5 ^ ^=1^ ^114 ^4 PC(40)4 '^■'1''14 ^]°1^4 

i ifloi] s.^ 44J1 SI4. ^ 44^ PC(40)°fl4 ^1-4(50) 

^ x^^^B.^M ^^v> 444, ^1:4(50)'^I4 PC(40)S- 'gs.^4€ ^ Si 

x]^t!:4. 

-^r^. 44t ^l^:^4 ^^-^l •transfer-'^l £^1^14 ^4^ 44^ 
^ ^^^.7]Cf,0)S. 4*S.^ 4?!^, PC(40)^ t-1]o]E^ i^1°l>i4 «]4fe € 

-traiisfer-iAi 'transferred' 5E4S. tfl>|]s]jl. n -^^S" ^ 

^7] (50)3. 4*S.^'fi-4. 

:^cl^^ ^«^7](50)'H1 t:l-*S.= € ^4^ ^^Hfe 44 PC(40)S ^ 
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3 c: 



-^71 m-^]^ pc(4o) ^i^i m^n m. =i^^, m^mm)^]^^ 4 

^ ^^^71(50)* ^i-'t^^l PC(40)^ 'tiS^Al^J ^ ^4. 

at>, ^ PC(40)v^, *i|l-§- ^^^7](50)°i]^ ^Fr ^^^^ 

CD. 4rSi CI). DVD Disk ^ ^^1 

APIfe n-^^ t^l^ 4^ tV^. 5EtV. ^i^7f «^S.4€ 

7}:^ -4^ ^'^^ API^ ^^x^-7l4 ^^^^ ^ :^^^*> ^ 

'^^^^^is^ ^i^-7> -^m^ ^m- m ^-f api^ ^^i- ^ 

.^V^^V API7> f^dmport control iayer)-S.^ ^^^17] 
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tflt.> -1-^ tH-t, ^'^l^- 

^7is.] >iio]oi]Ai 0] >no] ti^^ ms.^^ ^^^^ 

«}-o>A^ ^^Hl- t;^^ iT^i ^ ^^i^i 4^ ^ 

S)', 44 ^. ■;'FJ51=1-=^t>^ ^-B: -^^ 

i^^.-.7}'aAl, 'LCI_ID'«- SOI ^]3-^^ nm ^4°]^ ID 

^"^-S- ^^7H1 ^^-^y ^(Tnms-pnrrypt inn^ tb^. 

ZL^yi, PC7> 7|-xlJi $1^ Public Key<^l s^^fl ^jae^S ^ti-^^^-lr Public 

7> ^^^^ im ^]3.^ m -71* 7>^i^;=^h ^lati-^^^ 'S^-^ ^^^-i- 

^^IV ^^-i- ^t7lS ^^s]^ <i}^S.rL <?]^^ PDFM 
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m-t "Js^^U, m^}n ^^J^ ^>4§H '?ls^€ Sell'a-g- ^-t.5Ftb 

4A> ^Bfl ^, '4>^}lr7]-' SA], ^/^]a °>^(^^>^-^ 

^)', ^fl^S '^I'H ^i-^fl ^. ^4^(^5:1^^)', ^1^ -"J-^l 

^^715. IJ^Slfe 'a^'Sr ^^^J^ ^^1 ^^^^ ^-i- $'?lr4. 
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^ ^^^m^ ^l-^^CSpare Area)=fl ^^tb ^ ^ PeLCai°1|>-i 
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^ci]-§" ^t7UlOO)fe l-E]^ H) cafe I£MW ^>««H 

;i^^Ti|i[i]5] ^1 "g^C Spare AreaH ^^tb ^ ^ iseiCM'^l^i ^M^}^ 

^l^^^s] ^^t!: #ai^H # ^^'11^^^ •^^t>4. 

^■i-'T^^O-S-^B^ 4€rSS. 1>fe4. . 

"^I^. -frcfl^ ^^7i(ioo)fe- mm^^n ^-t^]^ ^^71(100)4 p6lcm 4 

o'Hl 'd^tl: ■^^^^l?]7l ^rfl^ ^1-7] (100) 5J ^LCMfe 44^ ^la 

sjB ?]( Q Q o ,rot key, S C hannel Key, CK)# ^^4711 €4. 
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-§■ Ta-^7|^ -^1^, 1}-^^ tfe -711- ^^1^1?]^ ^c] ^^^^^^ 

^ ^tKl30)^s. -il^^H "c-l^lt ?l€B5i ^c-i^^-i- i:q.Ai o^j:si-Ai7!^ ;^^M^1 

(200)^1 tflol^^ '^5^o|) ;5j:fAl^4. 

'^'Hl, -t4^^^H:i*^^(l20)^^ l-^^El£l i-ei^ =^^^V ^ 
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^^pj. o>T^5:^, ■t^^<a ^l-g-^V^} ^^^^^ 4^s.^«x>€r 1=1^1^ 
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What is claimed is: 

tl^ ;^>^ ?| ^1 ZL -7l^i# -^j-^sH ^**]-^ ^iv^H^^; 
yiliH 4^1] ^J-^l ^1^^. 
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^ 7;\^x\-7]^ 4^1 «c3-^] ^1^-^^- 

gfj >,] 2 -^-^^m ^^'^^^^ ^fl 2 ^-^'7]* 6l-§-*}=i PC^ ^ 

o]-g-^><^ ^ 7i^^-s- ^ ^^1^ 

Sls^ 5iilS'7i, ?^]3i-7] ^ ^fe ^1 1 

Sl'£4 ^1 ^ ^l-'g^^ ^1^^*}^ ^# 

-47- 



PATENT 
P55690 



n ^"i^ 55] #1^-7] 4 3s]-ir^-7l ^^1- ^^^n. ^1^-71 ^-i-^^ 

^#^H ^ -^^^m PC; ^ 

^J-71 ^13:-7| ^ ;»11S71 ^£L'3- ^^^^'T- ^]^^} 

^}'ai7fl '^^S.^^ 4 2 ^l^^ll-^ :^lS-7] ^^4 'a^^^^ ^-^-i- ^ 

61 
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71 m 4 2 ^fr-7ll- mB ^^^^^ 4 2 ^^-711- ^]-^^H PC 

ti^B 

l^^^^ 10] 

m^^^ in' 
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5]]^ -7]* €^«^V7l] t^l-^]^ ^J-^^^l^ ^^1] 

7 ^te ^] 11 Si^^i, ^^1 *'^-S- ^^7]*il^i ^1 2 sii 

<='l-ir'&, ^-^-^ ^t7H] ^-^^^ ol-§-^}=^ ^fl^^l^ S.^^ '^'^Hjjl, ^ 

7] PCS}- ^11^^11- ^H-^^]?^ ^* ^^^^ tl- 

^ Jf^ 4^1 >^1^^. 
I^^D- 13] 

PC^A.j :^t]]J^ ^^7]S. ^-^rS.^ 1>7-m-. ^"fl-i- ^>^7H 

^ ^]e]>^^ PC*1] 2^*11 ^^t}7\] ^^S^^ ^1^1] ^^J:^ST7^u>, ^H^^ 

^V7i ^^ta-i- ^ia:7m, pcs.^B^ PC4 ^-fr 

^ ^7rFc^ ^1- 1=1^] t ^-^s -^^ ^4 1^-^] ^1 
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l'^^^^ 14] 

c-flo]B M.^ ^-^j-E^^^l tfl^ ^:m. 7T]^| ^ 

l^^^} 151 

14 ^3-^ -^^HSl '^^^^ 44, 

I^^'SJ 161 

14 ^=>1 ^^e. ?fl^S^=r^] 
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HH^^, (LCMi-*! a}^ v^i^^ 4^2. sa-i-) 

-l-^i=^Bl2^ #ela:! ^^t> ^ ^ ^LCM^]>^i ^l>-J^H ^^^^ ^l3.e| 
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COPY PROTECTION SYSTEM 
FOR PORTABLE STORAGE MEDIA 



ABSTRACT 



m ^^si^ ^i^^.j ^^^^^ ^ 

r^^s] ^1-1- ^-^^U,. ^^^.Hl ^.^^ ^i^s^^ ^^^^^^ 

^ ^^flB* 4^^^ 'SS-^f^ tq..]^i .^^^ ^^^^ ^^^^^j 

^ 514^ ^t^^ ^^«^-4. a^ai Pc^ .^71 4:^]-€ 
%^J^-f^ 1- Aiae^H ^B^^ ^^^^^^ 

2Li3SjBjfl^J^tF4. H^H PC4 ^rt)!-^ r^.^7]oil 

z^z^o] ,^:.|^ ^^^^ ^^^^^^ ^,4. 44 

-1. 4^1^ ^mE. PC ^ ^ni^ ^u^,^ 4.|,,|^^ ^.^^^^ ^^^^ 
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□ J'] ^^Tifl^^ s^l-^^C^^. Spare AreaBl-^S ^'^^l'^. ^ 
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IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 



In re Application of: 



CHANG-HYILEE etal 



Serial No.: 



to be assigned 



Examiner: 



to be assigned 



Filed: 



30 April 1999 



Art Unit: 



to be assigned 



For: 



COPY PROTECTION SYSTEM FOR PORTABLE STORAGE MEDIA 



TR ANSMTTTAT. OF DECLARATION 



Assistant Commissioner 

for Patents 
Washington, D.C 20231 

Sir: 

This fransmittal accompanies a Declaration without the signature by the iaventor(s), for the 
above-captioned apphcation. A Substitute Declaration with the inventor(s)'s signature will be filed 
upon receipt of the Serial No, for the above-captioned application. 




Respectfully submitted. 



Robert E. Bushnell, 
Attorney for the Applicant 
Registration No . : 27,774 



Suite 300, 1522 "K" Street, N.W. 
Washington, D.C. 20005 
(202) 638-5740 



Folio: P55690 
Date: 04/30/99 
I.D.: REB/kf 



PTO/SB/01 (6/95) 



DECLARATION 



Docket No. P55690 



AS A BELOW NAMED INVENTOR, I hereby declare that: 

My residence, post office address and citizenship are as stated next to my name. 

I believe that I am the original, first and sole (^onfy cm name is Hsted below), or an original, first and joint inventor ( if plural names are Usted below), of the subject 
matter which is claimed and for which a patent is sought on the invention entitled: 

TITLE: COPY PROTECTION SYSTEM FOR PORTABLE STORAGE MEDIA 

the specification of which either is attached hereto or otherwise accompanies this Declaration, or: 

was filed in the U.S. Patent & Trademark Office on and assigned Serial No. , 

and (if applicable) was amended on . 



□ 



I hereby state that I have reviewed and understand the contents of the above-identified specification, including the claims, as amended by any 
amendment referred to above. I acknowledge the duty to disclose information which is material to patentability and to the examination of this application in 
accordance with Title 37 of the Code of Federal Regulations §1.56. I hereby claim foreign priority benefits under Title 35, U.S. Code §119(a)-(d) or §365(b) 
of any foreign application(s) for patent or inventor's certificate, or §365(a) of any PCT International application which designated at least one country other than 
the United States, or § 119(e) of any United States provisional application(s), listed below and have also identified below any foreign applications for patent or 
inventor's certificate having a filing date before that of the application on which priority is claimed: 

Priority Claimed: 

39808/1998 Republic of Korea 24 September 1998 Yes [ X ] Not 1 

(Application Number) (Country) (Day/Month/Year filed) 

39809/1998 Republic of Korea 24 September 1998 Yes IX] No [ ] 

(Application Number) (Country) (Day/Month/Year filed) 

•J J I hereby claim the benefit under Title 35, U.S. Code, §120, of any United States application(s), or §365(c) of any PCT International application 
d&s^nating the United States, listed below and, insofar as the subject matter of each of the claims of this application is not disclosed in the prior United States 
oSCT Intemational application(s) in the manner provided by the first paragraph of Title 35, U.S. Code, §112, 1 acknowledge the duty to disclose information 
t^plrial to patentabflity as defined in Title 37, The Code of Federal Regulations, § 1.56(a) which became available between the filing date of the prior application 
ahB-=the national or PCT international filing date of this ^plication: 

(Application Serial No,) (Filing Date) (STATUS: patented, pending, abandoned) 

(^plication Serial No.) (Filing Date) (STATUS: patented, pending, abandoned) 

I hereby revoke all previously granted powers of attorney and appoint the following attorneys: Robert E. Bushnell, Reg. No, 27,774, Michael D. 
PMket, Reg. No. 34,973, and Henry M. Zykorie, Reg. No. 27,477, to prosecute this application and to transact all business in the U.S. Patent & Trademark 
cfflice connected therewith and with any divisional, continuation, continuation-in-part, reissue or re-examination application, with full power of appointment 
as4 with full power to substitute an associate attorney or agent, and to receive all patents which may issue thereon, and request that all correspondence be 
aSressed to: 

Robert E. Bushnell, 
Attorney-at-Law 

Suite 300. 1522 "K" Street, N.W. Payor No. 008439 

Washington, D.C. 20005-1202 Area Code: 202-638-5740 

I HEREBY DECLARE that all statements made herein of my own knowledge are true and that all statements made on information and belief are believed to be 
true; and further that these statements were made with the knowledge that willfiil false statements and the like so made are punishable by fine or imprisonment, 
or both, under §1001 of Title 18 U.S. Code and that such willful false statements may jeopardize the validity of the application or any patent issued thereon. 

FULL NAME OF FIRST OR SOLE INVENTOR: CHANG-HYI LEE Citizenship : Republic of Korea 

Inventor's signature: Date: 

Residence & Post Office Address: #416, Maetan-doi^, Paldal-gu, Suwon-dty, Kyungld-do, R^ublic of KOREA 

FULL NAME OF SECOND JOINT INVENTOR: HQ-SUK CHUNG Citizensh^) : Republic of Korea 

Inventor's signature: Date: . 

Residence & Post Office Address: #416, Maetan-dong, Paldal-gu, Suwon-city, Kyungki-do, Republic of KOREA 

FULL NAME OF THIRD JOINT INVENTOR: EN-SEONG KAKG Citizenship: Republic of Korea 

Inventor's signature: Date: 

Residence & Post Office Address: #416, Maetan-dong, Paldal-gu, Suwon-city, Kyungki-do, Republic of KOREA 

FULL NAME OF FOURTH JOBSTT INVENTOR: Citizenship: 



Inventor's signature: Date: . 

Residence 8l Post Office Address: 



□ 



Additional inventors are being named on separately numbered sheets attached hereto. 



ARE BUSHNELL & LAW RRM 12/10/1998 



